$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3137322e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: 8HZzGWowHvmwMzHG3NWnaehtLpvIXphsjp+5PGjuOI8= Subject key identifier: 7A:9D:01:33:B9:17:B5:04:D8:E3:FC:E2:0D:B1:1E:7B:43:96:75:31 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 27B207E86E842008300A07F29B29A5DA5B9700EB Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:02:59 +0000 ROA not before: Mon 01 Jul 2024 00:57:59 +0000 ROA not after: Mon 30 Jun 2025 01:02:59 +0000 asID: 38778 IP address blocks: 203.201.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:b2:07:e8:6e:84:20:08:30:0a:07:f2:9b:29:a5:da:5b:97:00:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:59 2024 GMT Not After : Jun 30 01:02:59 2025 GMT Subject: CN=7A9D0133B917B504D8E3FCE20DB11E7B43967531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f0:4c:a9:f6:87:09:63:d2:59:2a:12:63:6c: ea:a6:f1:9c:54:cf:86:18:c2:5d:b1:08:46:07:65: bf:12:be:5c:63:e5:34:8d:58:07:ec:f3:31:0b:75: 54:56:2e:fe:50:0e:92:fa:ef:b5:94:f4:c5:ef:24: 7d:e5:d3:1c:cd:bb:bf:2b:18:16:b4:ae:ab:c7:b0: de:cf:02:6c:64:3a:89:fc:c2:78:24:7d:70:8a:2e: da:42:f3:94:2b:b8:88:4b:f4:2f:e9:2f:78:9f:c6: bd:09:7c:9b:50:98:94:ef:d7:2e:24:d1:ca:2c:6c: 2b:5c:8f:97:eb:f5:32:83:69:82:f8:3d:d7:75:02: 53:29:b9:37:e4:26:0c:24:f8:1b:aa:2a:19:e4:ce: 24:25:da:fb:93:cc:6b:bd:3f:12:86:c0:a2:2f:8e: 7c:92:be:5a:15:30:8b:4c:95:e9:df:b7:5f:31:45: f3:7c:61:4c:a7:56:ec:b8:be:b1:f5:e1:8b:fe:1f: 2d:8d:b1:af:7e:a6:7d:a2:c3:85:24:2d:1f:3f:b1: 28:de:c3:d3:56:69:5b:52:28:45:7b:57:0b:a3:6e: 3c:7b:42:34:38:8c:20:54:e4:a9:8f:b8:cf:32:92: 9e:79:00:22:1f:4f:6c:f5:60:46:a3:2f:f9:37:10: a5:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:9D:01:33:B9:17:B5:04:D8:E3:FC:E2:0D:B1:1E:7B:43:96:75:31 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.172.0/24 Signature Algorithm: sha256WithRSAEncryption 08:13:04:ef:14:a6:ee:3b:b5:22:2d:a1:a7:45:da:a4:e8:99: 7e:df:c6:4f:f7:c5:1b:a4:cb:d9:41:16:79:a2:ee:a6:8b:28: 28:fd:9f:a8:5b:db:a1:c8:90:8f:b8:8f:94:ad:d6:2f:eb:93: b5:5b:7b:a4:0b:1b:37:01:09:5a:cd:69:a0:c2:e2:b7:94:08: 41:53:3f:1e:ba:b6:6d:07:1c:3b:e3:e3:91:c8:50:21:c2:b4: 86:ce:5e:e6:bd:0e:54:7a:82:d3:17:28:c2:95:1e:aa:85:7e: 96:8e:39:bb:c1:a8:d2:b7:47:4a:19:53:1d:ea:2e:70:f5:0f: b2:86:b9:2e:a9:fe:cd:79:5a:51:a0:2f:16:fe:c0:df:e9:01: 87:16:76:9a:5c:dc:f4:1b:5b:7d:c0:f6:58:6e:c1:8b:f6:38: db:9a:53:29:76:f9:71:aa:83:3d:d8:be:92:40:6e:01:21:91: f4:69:f8:ad:4b:c6:7d:9f:cc:9c:ba:f0:e4:22:f6:f9:67:35: 48:c5:df:18:ce:87:1f:e9:cf:fc:f5:bc:82:b5:07:d1:6b:e5: 16:78:95:c6:d7:4d:41:fc:62:66:6b:3a:80:c9:44:f6:c2:ee: 84:44:06:74:22:37:2d:f6:1f:71:04:7e:c5:bf:a7:b3:a9:41: 06:85:63:07 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ7IH6G6EIAgwCgfymyml2luXAOswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTlaFw0yNTA2MzAwMTAyNTlaMDMxMTAvBgNV BAMTKDdBOUQwMTMzQjkxN0I1MDREOEUzRkNFMjBEQjExRTdCNDM5Njc1MzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE8Eyp9ocJY9JZKhJjbOqm8ZxU z4YYwl2xCEYHZb8Svlxj5TSNWAfs8zELdVRWLv5QDpL677WU9MXvJH3l0xzNu78r GBa0rqvHsN7PAmxkOon8wngkfXCKLtpC85QruIhL9C/pL3ifxr0JfJtQmJTv1y4k 0cosbCtcj5fr9TKDaYL4Pdd1AlMpuTfkJgwk+BuqKhnkziQl2vuTzGu9PxKGwKIv jnySvloVMItMlenft18xRfN8YUynVuy4vrH14Yv+Hy2Nsa9+pn2iw4UkLR8/sSje w9NWaVtSKEV7Vwujbjx7QjQ4jCBU5KmPuM8ykp55ACIfT2z1YEajL/k3EKWtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUep0BM7kXtQTY4/ziDbEee0OWdTEwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8msMA0GCSqG SIb3DQEBCwUAA4IBAQAIEwTvFKbuO7UiLaGnRdqk6Jl+38ZP98UbpMvZQRZ5ou6m iygo/Z+oW9uhyJCPuI+UrdYv65O1W3ukCxs3AQlazWmgwuK3lAhBUz8eurZtBxw7 4+ORyFAhwrSGzl7mvQ5UeoLTFyjClR6qhX6Wjjm7wajSt0dKGVMd6i5w9Q+yhrku qf7NeVpRoC8W/sDf6QGHFnaaXNz0G1t9wPZYbsGL9jjbmlMpdvlxqoM92L6SQG4B IZH0afitS8Z9n8ycuvDkIvb5ZzVIxd8Yzocf6c/89byCtQfRa+UWeJXG101B/GJm azqAyUT2wu6ERAZ0Ijct9h9xBH7Fv6ezqUEGhWMH -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org